/hg/release/icedtea-web-1.0: PR768: Signed applets/Web Start app...

[dbhole at icedtea.classpath.org]

changeset 7ee2e487f4e2 in /hg/release/icedtea-web-1.0
details: http://icedtea.classpath.org/hg/release/icedtea-web-1.0?cmd=changeset;node=7ee2e487f4e2
author: Deepak Bhole <dbhole at redhat.com>
date: Wed Aug 03 14:11:11 2011 -0400

	PR768: Signed applets/Web Start apps don't work with OpenJDK7 and up


diffstat:

 ChangeLog                                      |  6 ++++++
 NEWS                                           |  2 ++
 netx/net/sourceforge/jnlp/tools/JarSigner.java |  2 +-
 3 files changed, 9 insertions(+), 1 deletions(-)

diffs (37 lines):

diff -r a20bd5a4d035 -r 7ee2e487f4e2 ChangeLog
--- a/ChangeLog	Thu Jul 21 15:12:38 2011 -0400
+++ b/ChangeLog	Wed Aug 03 14:11:11 2011 -0400
@@ -1,3 +1,9 @@
+2011-08-03  Deepak Bhole <dbhole at redhat.com>
+
+	PR768: Signed applets/Web Start apps don't work with OpenJDK7 and up
+	* netx/net/sourceforge/jnlp/tools/JarSigner.java (verifyJar): Put entry in
+	cert hashtable only if the entry is expected to be signed.
+
 2011-07-21  Deepak Bhole <dbhole at redhat.com>
 
 	PR749: sun.applet.PluginStreamHandler#handleMessage(String) really slow
diff -r a20bd5a4d035 -r 7ee2e487f4e2 NEWS
--- a/NEWS	Thu Jul 21 15:12:38 2011 -0400
+++ b/NEWS	Wed Aug 03 14:11:11 2011 -0400
@@ -11,6 +11,8 @@
 New in release 1.0.5 (2011-XX-XX):
 * Plugin
   - PR749: sun.applet.PluginStreamHandler#handleMessage(String) really slow
+Common
+  - PR768: Signed applets/Web Start apps don't work with OpenJDK7 and up
 
 New in release 1.0.4 (2011-07-20):
 * Security updates:
diff -r a20bd5a4d035 -r 7ee2e487f4e2 netx/net/sourceforge/jnlp/tools/JarSigner.java
--- a/netx/net/sourceforge/jnlp/tools/JarSigner.java	Thu Jul 21 15:12:38 2011 -0400
+++ b/netx/net/sourceforge/jnlp/tools/JarSigner.java	Wed Aug 03 14:11:11 2011 -0400
@@ -326,7 +326,7 @@
                     if (shouldHaveSignature)
                         totalSignableEntries++;
 
-                    if (isSigned) {
+                    if (shouldHaveSignature && isSigned) {
                         for (int i = 0; i < signers.length; i++) {
                             CertPath certPath = signers[i].getSignerCertPath();
                             if (!certs.containsKey(certPath))